DarkPlayer@lemmy.world to Programming@programming.dev · 9 months agoUnicode tricks in pull requests: Do review tools warn us?semanticdiff.comexternal-linkmessage-square12fedilinkarrow-up137arrow-down12cross-posted to: security@lemmy.ml
arrow-up135arrow-down1external-linkUnicode tricks in pull requests: Do review tools warn us?semanticdiff.comDarkPlayer@lemmy.world to Programming@programming.dev · 9 months agomessage-square12fedilinkcross-posted to: security@lemmy.ml
minus-squaremonk@lemmy.unboiled.infolinkfedilinkarrow-up22·9 months agoHomoglyphs? Invisible text? Bidirectional text? Just highlight every line that goes beyond ASCII with yellow warning colors and require to vet it. Maybe make localization data an exception.
minus-squareActual@programming.devlinkfedilinkEnglisharrow-up3·9 months agoVery simple solution actually. Here I was thinking we’d need AI to solve it.
minus-squareDudeDudenson@lemmings.worldlinkfedilinkarrow-up11·9 months agoPeople would call that solution AI these days. If it has at least one if statement then they call it AI
minus-squareslacktoid@lemmy.mllinkfedilinkEnglisharrow-up3·9 months agoWe say we have AI to get VC funding
minus-squarearthur@lemmy.ziplinkfedilinkEnglisharrow-up1·9 months agoOr the non-ascii character itself.
minus-squaremonk@lemmy.unboiled.infolinkfedilinkarrow-up3·9 months agoDoesn’t work if it’s invisible.
Homoglyphs? Invisible text? Bidirectional text? Just highlight every line that goes beyond ASCII with yellow warning colors and require to vet it. Maybe make localization data an exception.
Very simple solution actually. Here I was thinking we’d need AI to solve it.
People would call that solution AI these days. If it has at least one if statement then they call it AI
We say we have AI to get VC funding
Or the non-ascii character itself.
Doesn’t work if it’s invisible.
what about a box around it?